From 8e9bdb4a8c4a9a79e84e256ad1ea3286e163aa54 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Thu, 13 Feb 2025 17:28:38 +0000
Subject: [PATCH 01/34] deleted before you begin partial

---
 .../magic-wan/connector/before-you-begin.mdx  | 25 -------------------
 1 file changed, 25 deletions(-)
 delete mode 100644 src/content/partials/magic-wan/connector/before-you-begin.mdx

diff --git a/src/content/partials/magic-wan/connector/before-you-begin.mdx b/src/content/partials/magic-wan/connector/before-you-begin.mdx
deleted file mode 100644
index fe8cbe3f604700e..000000000000000
--- a/src/content/partials/magic-wan/connector/before-you-begin.mdx
+++ /dev/null
@@ -1,25 +0,0 @@
----
-{}
----
-
-import { Card } from "~/components";
-
-You can install up to two Magic WAN Connectors for redundancy at each of your sites. If one of your Connectors fail, traffic will fail over to the other Connector ensuring that you never lose connectivity to that site.
-
-In this type of high availability (HA) configuration, you will choose a reliable LAN interface as the HA link which will be used to monitor the health of the peer connector. HA links can be dedicated links or can be shared with other LAN traffic.
-
-You must decide the type of configuration you want for your site from the beginning: no redundancy or with redundancy. You cannot add redundancy after finishing configuring your dashboard settings. If, at a later stage, you decide to enable redundancy, you will need to delete your Connector on-ramp in the Cloudflare dashboard, and start again.
-
-<Card title="Do you need a high availability configuration?" icon="information">
-
-- If you need a high availability configuration for your premises, refer to
-  [About high availability configurations](#about-high-availability-configurations) for more information
-  and learn how to configure your Connector in this mode.
-
-- If you do not need a high availability configuration for you premises, proceed to [Set up Cloudflare dashboard](#set-up-cloudflare-dashboard).
-
-</Card>
-
-:::caution
-You cannot enable high availability for an existing Connector on-ramp. To add high availability to an existing Connector on-ramp in the Cloudflare dashboard, you need to delete the on-ramp and start again. Plan accordingly to create a high availability configuration from the start if needed.
-:::

From 52380097d7e4bba99f1986a6dc40850bd5f85449 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Thu, 13 Feb 2025 17:28:45 +0000
Subject: [PATCH 02/34] added new config connectors partial

---
 .../connector/configure-connectors.mdx        | 168 ++++++++++++++++++
 1 file changed, 168 insertions(+)
 create mode 100644 src/content/partials/magic-wan/connector/configure-connectors.mdx

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
new file mode 100644
index 000000000000000..a95ccb37093ce62
--- /dev/null
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -0,0 +1,168 @@
+---
+params:
+  - magicWord
+  - productName
+  - productNameType
+---
+
+import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Render } from "~/components";
+
+{ props.magicWord === "virtual" && (
+	<>
+		<p>Virtual Magic WAN Connector (Virtual Connector) is a virtual appliance alternative to the hardware based Magic WAN Connector appliance. These two versions of Connector are identical otherwise.</p>
+	</>
+	)
+}
+
+## Prerequisites
+
+{ props.magicWord === "hardware" && (
+  <>
+    <p>You need to purchase <a href="https://www.cloudflare.com/magic-wan/">Magic WAN</a> before you can purchase and use the Magic WAN Connector. The Magic WAN Connector can function as your primary edge device for your network, or be deployed in-line with existing network gear.</p>
+		<p>You also need to purchase a Magic WAN Connector before you can start configuring your settings in the Cloudflare dashboard. After buying a Magic WAN Connector, the device will be registered with your Cloudflare account and show up in your Cloudflare dashboard.</p>
+		<p>Contact your account representative to learn more about purchasing options for the Magic WAN Connector device.</p>
+  </>
+  )
+}
+
+{ props.magicWord === "virtual" && (
+  <>
+    <p>Before you can install Virtual Connector, you need an Enterprise account with Magic WAN enabled. Additionally, you need to have a VMware host with sufficient compute, memory, and storage to run the virtual machine with Virtual Connector. This includes:</p>
+		<ul>
+    	<li>Intel x86 CPU architecture</li>
+    	<li>ESXi hypervisor 7.0U1 or higher</li>
+    	<li>4 virtual CPUs per virtual connector (We recommend deployment with a 1:1 virtual CPU to physical core allocation to avoid CPU over contention which will cause packet loss.)</li>
+    	<li>8 GB of RAM per virtual connector</li>
+    	<li>8 GB of disk per virtual connector</li>
+    	<li>One vSwitch port group or VLAN with access to the Internet (for example, through a WAN)</li>
+    	<li>One or more vSwitch port group or VLAN that will be the internal LAN</li>
+		</ul>
+		<p>Refer to <a href="https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.esxi.install.doc/GUID-B2F01BF5-078A-4C7E-B505-5DFFED0B8C38.html">VMware's documentation</a> for more information on how to install ESXi and configure a virtual machine.</p>
+  </>
+  )
+}
+
+---
+
+## Before you begin
+
+You can install up to two Magic WAN Connectors for redundancy at each of your sites. If one of your Connectors fail, traffic will fail over to the other Connector ensuring that you never lose connectivity to that site.
+
+In this type of high availability (HA) configuration, you will choose a reliable LAN interface as the HA link which will be used to monitor the health of the peer connector. HA links can be dedicated links or can be shared with other LAN traffic.
+
+You must decide the type of configuration you want for your site from the beginning: no redundancy or with redundancy. You cannot add redundancy after finishing configuring your dashboard settings. If, at a later stage, you decide to enable redundancy, you will need to delete your Connector on-ramp in the Cloudflare dashboard, and start again.
+
+<Card title="Do you need a high availability configuration?" icon="information">
+
+- If you need a high availability configuration for your premises, refer to
+  [About high availability configurations](#about-high-availability-configurations) for more information
+  and learn how to configure your Connector in this mode.
+
+- If you do not need a high availability configuration for you premises, proceed to [Set up Cloudflare dashboard](#set-up-cloudflare-dashboard).
+
+</Card>
+
+:::caution
+You cannot enable high availability for an existing Connector on-ramp. To add high availability to an existing Connector on-ramp in the Cloudflare dashboard, you need to delete the on-ramp and start again. Plan accordingly to create a high availability configuration from the start if needed.
+:::
+
+---
+
+## DHCP vs static IP connections
+
+{props.productName} uses a DHCP connection at first boot to download your settings and go through the activation process. However, if you need to use a static IP in your {props.productName}, and this is a fresh install:
+1. Connect {props.productNameType} to a DHCP port with access to the Internet.
+2. Go through the [setup flow](#set-up-cloudflare-dashboard) below and activate your Connector.
+3. Refer to [WAN with a static IP address](#wan-with-a-static-ip-address).
+
+---
+
+{ props.magicWord === "hardware" && (
+  <>
+		<AnchorHeading title="Port speeds" depth={2} />
+    <p>The hardware version of the Magic WAN connector includes two <a href="https://en.wikipedia.org/wiki/Small_Form-factor_Pluggable">SFP+ ports</a> that support 10G throughput, as well as six RJ45 ports that support 1G throughput.</p>
+		<p>Refer to <a href="/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/">SFP+ port information for details on this topic.</a></p>
+  </>
+  )
+}
+
+{ props.magicWord === "virtual" && (
+  <>
+		<AnchorHeading title="Obtain the Virtual Connector image" depth={2} />
+
+		<p>Contact your account team at Cloudflare to obtain the Virtual Connector <a href="https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-AE61948B-C2EE-436E-BAFB-3C7209088552.html">OVA package</a> and license keys. The OVA image includes the files required to install and configure the virtual machine (VM) for Virtual Connector with the appropriate settings.</p>
+		<p>This image can be deployed multiple times to create several instances of a Virtual Connector, in different locations or on the same ESXi host.</p>
+		<p>You will consume one license key for each instance created. For example, if you want to deploy 10 Virtual Connectors you should request 10 license keys, and your account team will create 10 Connector instances in your Cloudflare dashboard.</p>
+
+		<AnchorHeading title="Deploy the Virtual Connector on VMware" depth={2} />
+
+		<p>The following instructions assume you already have VMware ESXi hypervisor installed with sufficient resources. Refer to <a href="#prerequisites">Prerequisites</a> for more information.</p>
+		<ol>
+
+			<li>When setting up your VMware ESXi, you need to create port groups for Virtual Connector. Go to <strong>Networking</strong> {'>'} <strong>Port groups</strong>, and prepare your vSwitch port groups and/or VLANs for your desired network topology. For example, a simple deployment typically has:
+				<ul>
+					<li>A WAN port group where the Virtual Connector will get an IP address (static or DHCP) that has access to the Internet.</li>
+					<li>A LAN port group, where the Virtual Connector will act as default router, and possibly DHCP server.</li>
+					<li>A null, or unused, port group for allocating unused virtual interfaces in the Virtual Connector. You can, for example, create a null port group with the name of <code>Null port group</code>, and a <strong>VLAN ID</strong> of <code>999</code>.</li>
+				</ul>
+
+			<Aside title="VLAN tagging">
+			<p>Virtual Connector supports creating subinterfaces through the use of [802.1Q VLAN tagging](https://en.wikipedia.org/wiki/IEEE_802.1Q).</p>
+			<p>Use VLAN ID <code>0</code> when:</p>
+			<ul>
+				<li>Connected to a Port Group or Distributed Port Group that is associated with a specific VLAN.</li>
+				<li>Connected to a Port Group or Distributed Port Group that is configured as a trunk that requires untagged packets.</li>
+			</ul>
+			<p>You can also configure subinterfaces on the Virtual Connector by associating the network interface with a Port Group or Distributed Port Group trunk and specifying a VLAN ID in addition to the port associated with the network interface (VLAN ID `1`-`4094`).</p>
+			<p>Refer to <a href="https://kb.vmware.com/s/article/1003825">VMWare's documentation</a> for more information.</p></Aside></li>
+
+			<li>Extract the files in the OVA image provided by your Cloudflare account team. For example:
+
+			<Code lang="txt" code="tar -xvf mconn-2024-1-3.ova" />
+
+			Take note of the folder where you are extracting the files to, as you will need to refer to that folder when creating the VM.
+			</li>
+
+			<li>Go to <strong>Virtual Machines</strong> {`>`} <strong>Create/Register VM</strong> wizard to start deploying the Virtual Connector.</li>
+
+			<li>Select <strong>Deploy a virtual machine from an OVF or OVA file</strong> {`>`} <strong>Next</strong>.</li>
+
+			<li>Choose a descriptive name for your virtual machine.</li>
+
+			<li>Upload the files you have extracted from the OVA image. These include <code>mconn.ovf</code>, <code>mconn.nvram</code>, and <code>mconn.vmdk</code>.</li>
+
+			<li>Select where you want to save the files extracted from the OVA image {`>`} <strong>Next</strong>.</li>
+
+			<li>In <strong>Networking mappings</strong>, select assignments for your desired topology according to the port groups you set up previously:</li>
+				<ol>
+					<li>For example, map <code>eno1</code> port to <code>VM Network</code> to create your WAN, and <code>eno2</code> to <code>LAN0</code> to act as your LAN port.</li>
+					<li>Allocate any unused ports to the <code>null</code> port group.</li>
+					<li>Take note of your configuration. You will need this information to configure your network in the Cloudflare dashboard.</li>
+				</ol>
+
+			<li>In <strong>Disk provisioning</strong>, select <strong>Thin</strong>.</li>
+
+			<li>Before completing the deployment wizard, disable <strong>Power on automatically</strong>. This is important so that you can configure the license key prior to boot.</li>
+
+			<li>Configure the virtual machine with the license key your account team provided you:</li>
+			<ol>
+				<li>Select the Virtual Connector's VM {`>`} <strong>Settings</strong>.</li>
+
+				<li>Go to <strong>VM Options</strong> {`>`} <strong>Advanced</strong> {`>`} <strong>Edit Configuration</strong>.</li>
+
+				<li>Select <strong>Add parameter</strong> to add your license key. Scroll down to the last entry (this is where VMware adds the new parameter), and add the following two new entries:</li>
+					<ul>
+					<li><strong>Key</strong>: <code>guestinfo.cloudflare.identity</code></li>
+					<li><strong>Value</strong>: <code>{`<YOUR_LICENCE_KEY>`}</code></li>
+					</ul>
+			</ol>
+			<Aside>You cannot use the same license key twice, or reuse a key once the virtual machine has been registered with Cloudflare. You need a new key from your account team for every new Virtual Connector.</Aside>
+
+			<li>Select <strong>Save</strong> to finish configuring your Virtual Connector.</li>
+
+			<li>Continue set up in your <a href="#set-up-cloudflare-dashboard">Cloudflare dashboard.</a></li>
+		</ol>
+
+  </>
+  )
+}

From 32d35f1bf7dc01b810f8e6767313c743a1afb113 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 09:48:57 +0000
Subject: [PATCH 03/34] added set up dash

---
 .../connector/configure-connectors.mdx        | 137 +++++++++++++++++-
 1 file changed, 136 insertions(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index a95ccb37093ce62..d6c121a8ca8cd33 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -3,9 +3,12 @@ params:
   - magicWord
   - productName
   - productNameType
+  - wan
+  - lan
+  - noConnectorShows
 ---
 
-import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Render } from "~/components";
+import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Markdown, TabItem, Tabs } from "~/components";
 
 { props.magicWord === "virtual" && (
 	<>
@@ -166,3 +169,135 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
   </>
   )
 }
+
+---
+
+## Set up Cloudflare dashboard
+
+### 1. Add a Connector on-ramp
+
+You need to add your Connector to your Cloudflare dashboard and configure its settings before connecting it to the Internet.
+
+To add a Connector on-ramp:
+
+1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
+2. Go to **Magic WAN** > **Connector on-ramps (beta)**.
+3. Select **Add**.
+4. In **Name**, enter a descriptive name for your Connector. Optionally, you can also add a description for it.
+5. You need to decide if you want to turn on high availability for the Connector. Refer to [About high availability configurations](#about-high-availability-configurations) for more information.
+6. Select **Create and continue**.
+7. Select **Add Connector**. This will show you a list of Magic WAN Connector devices associated with your account. <Markdown text={props.noConnectorShows} />
+8. If you have more than one Connector, choose the one that corresponds to the on-ramp you are creating. Connectors are identified by a serial number, also known as a service tag. Use this information to choose the right Connector. Select **Select Connector** when you are ready to proceed.
+9. The Connector will be added to your account with an **Interrupt window** defined. The interrupt window is the time period when the Magic WAN Connector software can update, which may result in interruption to existing connections. You can change this later. Refer to [Interrupt window](/magic-wan/configuration/connector/maintenance/interrupt-service-window/) for more details on how to define when the Connector can update its systems.
+10. Select **Continue** to proceed to creating your WAN and LAN networks.
+
+### 2. Create a WAN
+
+<Tabs syncKey="dashPlusAPI"> <TabItem label="Dashboard">
+
+1. In **WAN configuration**, select **Create**. You can create one or more [wide area networks (WANs)](https://www.cloudflare.com/learning/network-layer/what-is-a-wan/). Configuring multiple WANs will create multiple <GlossaryTooltip term="IPsec tunnel">IPsec</GlossaryTooltip> tunnels (one IPsec tunnel per WAN port). This allows the Connector to failover between circuits according to their <GlossaryTooltip term="tunnel health-check" link="/magic-wan/reference/tunnel-health-checks/">health</GlossaryTooltip>.
+2. In **Interface name**, enter a descriptive name for your WAN.
+3. **Interface number** <Markdown text={props.wan} />
+4. In **VLAN ID**, enter a number between `0` and `4094` to specify a [VLAN ID](/magic-wan/configuration/connector/reference/#vlan-id).
+5. In **Priority**, choose the priority for your WAN. Lower numbers have higher priority. Refer to <GlossaryTooltip term="traffic steering" link="/magic-wan/reference/traffic-steering/">Traffic steering</GlossaryTooltip> to learn more about how Cloudflare calculates priorities.
+6. In **Health check rate** configure the health check frequency for your site. Options are `low`, `mid`, and `high`. Refer to [Update tunnel health checks frequency](/magic-wan/configuration/common-settings/tunnel-health-checks/) for more information.
+7. **Addressing**: Select **DHCP**. This is needed the first time you set up your Connector to successfully download all settings to the machine and activate it. If you need a static IP address in your network environment:
+	1. Continue the set up flow below to activate your Connector.
+	2. Refer to [WAN with a static IP address](#wan-with-a-static-ip-address). If you choose a static IP, you also need to specify the static IP and gateway addresses.
+
+  <div class="medium-img">
+
+![An example of how to configure you Magic WAN Connector WAN](~/assets/images/magic-wan/connector/wan-config.png)
+
+  </div>
+
+8. Select **Save** when you are finished.
+
+</TabItem> <TabItem label="API">
+
+<Render file="connector/account-id-api-key" product="magic-wan" />
+
+Create a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/wans/methods/create/) to create a WAN.
+
+The `static_addressing` object is optional. Omit it if you are using DHCP. If you are using static addressing, add the `secondary_address` parameter when your site is in high availability (HA) mode.
+
+Example:
+
+```bash
+curl https://api.cloudflare.com/client/v4/accounts/{account_id}/magic/sites/{site_id}/wans \
+--header "X-Auth-Email: <EMAIL>" \
+--header "X-Auth-Key: <API_KEY>" \
+--header "Content-Type: application/json" \
+--data '{
+	"name": "<YOUR_WAN_NAME>",
+	"physport": 1,
+	"priority": 0,
+	"vlan_tag": 0
+}'
+```
+
+</TabItem> </Tabs>
+
+### 3. Create a LAN
+
+<Tabs syncKey="dashPlusAPI"> <TabItem label="Dashboard">
+
+1. In **LAN configuration**, select **Create**.
+2. Enter a descriptive name for your LAN in **Interface name**.
+3. **Interface number** <Markdown text={props.lan} />
+4. In **VLAN ID**, specify a [VLAN ID](/magic-wan/configuration/connector/reference/#vlan-id) to create virtual LANs.
+5. In **Static addressing** > **Static address** give your Connector's LAN interface its IP address. You can also enable the following options if they suit your use case:
+   - **This is a DHCP server**: If your Connector is a [DHCP server](/magic-wan/configuration/connector/network-options/dhcp/dhcp-server/).
+   - **This is a DHCP relay**: If your Connector is a [DHCP relay](/magic-wan/configuration/connector/network-options/dhcp/dhcp-relay/).
+6. (Optional) In **Directly attached subnet** > **Static NAT prefix**, enter a CIDR prefix to enable NAT (network address translation). The prefix you enter here should be the same size as the prefix entered in **Static addressing**. For example, both networks have a subnet mask of `/24`: `192.168.100.0/24` and `10.10.100.0/24`.
+7. (Optional) If your LAN contains additional subnets behind a layer 3 router, select **Add routed subnet** under **Routed subnets** to add them:
+   - **Prefix**: The CIDR prefix for the subnet behind the L3 router.
+   - **Next hop**: The address of the L3 router to which the Connector should forward packets for this subnet.
+   - **Static NAT prefix**: Optional setting. If you want to enable NAT for a routed subnet, supply an "external" prefix for the overlay-facing side of the NAT to use. It must be the same size as **Prefix**. <br /> Refer to [Routed subnets](/magic-wan/configuration/connector/network-options/routed-subnets/) for more information.
+8. Select **Save**.
+9. Select **Done** to finish your configuration. Tunnels and <GlossaryTooltip term="static route">static routes</GlossaryTooltip> will be automatically created for your Magic WAN Connector, once it boots up.
+
+</TabItem> <TabItem label="API">
+
+<Render file="connector/account-id-api-key" product="magic-wan" />
+
+Create a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/lans/methods/create/) to create a LAN.
+
+Example:
+
+```bash
+curl https://api.cloudflare.com/client/v4/accounts/{account_id}/magic/sites/{site_id}/lans \
+--header "X-Auth-Email: <EMAIL>" \
+--header "X-Auth-Key: <API_KEY>" \
+--header "Content-Type: application/json" \
+--data '{
+	"name": "<YOUR_LAN_NAME>",
+	"physport": 2,
+	"static_addressing": {
+		"address": "172.16.14.0/24"
+	},
+	"vlan_tag": 0
+}'
+```
+
+</TabItem> </Tabs>
+
+#### Network segmentation
+
+After setting up your LANs, you can configure your Connector to enable communication between them without traffic leaving your premises. Refer to [Network segmentation](/magic-wan/configuration/connector/network-options/network-segmentation/) for more information.
+
+#### DHCP options
+
+Magic WAN Connector supports different types of DHCP configurations. Connector can:
+
+- Connect to a DHCP server or use a static IP address instead of connecting to a DHCP server.
+- Act as a [DHCP server](/magic-wan/configuration/connector/network-options/dhcp/dhcp-server/).
+- Use [DHCP relay](/magic-wan/configuration/connector/network-options/dhcp/dhcp-relay/) to connect to a DHCP server outside the location your Magic WAN Connector is in.
+- [Reserve IP addresses](/magic-wan/configuration/connector/network-options/dhcp/dhcp-static-address-reservation/) for specific devices on your network.
+
+Refer to [DHCP options](/magic-wan/configuration/connector/network-options/dhcp/) to learn more.
+
+### 4. Add your Connector to a site
+
+After finishing your Connector configuration, you need to add it to a site. <Render file="sites-brief" />
+

From 89c02fb872a5e230f10ad9990b91cb6f8f4cdd9e Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 10:56:02 +0000
Subject: [PATCH 04/34] added content

---
 .../connector/configure-connectors.mdx        | 67 ++++++++++++++++++-
 1 file changed, 66 insertions(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index d6c121a8ca8cd33..788f6f4603c7fd5 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -8,7 +8,10 @@ params:
   - noConnectorShows
 ---
 
-import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Markdown, TabItem, Tabs } from "~/components";
+import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Markdown, Render, TabItem, Tabs } from "~/components";
+
+import Mermaid from "~/components/Mermaid.jsx";
+
 
 { props.magicWord === "virtual" && (
 	<>
@@ -301,3 +304,65 @@ Refer to [DHCP options](/magic-wan/configuration/connector/network-options/dhcp/
 
 After finishing your Connector configuration, you need to add it to a site. <Render file="sites-brief" />
 
+{ props.magicWord === "hardware" && (
+  <>
+		<AnchorHeading title="Set up your Magic WAN Connector" depth={2} />
+
+		<AnchorHeading title="Device installation" depth={3} />
+		<p>There are several deployment options for Magic WAN Connector. Connector can act like a DHCP server for your local network, or integrate with your local setup and have static IP addresses assigned to it.</p>
+		<p>When Connector acts like the WAN router for your site, deployment will be something like this:</p>
+
+		<Mermaid chart={`
+		flowchart LR
+		accTitle: Magic WAN Connector set up as a DHCP server, and connecting to the Internet.
+    a(Magic WAN Connector)--> b(Internet) --> c(Cloudflare)
+
+    subgraph Customer site
+    d[LAN 1] --> a
+    e[LAN 2] --> a
+    end
+
+    classDef orange fill:#f48120,color: black
+    class a,c orange
+		`} />
+
+		<p>In the example below, the Connector sits behind the WAN router in your site, and on-ramps only some of the existing LANs to Cloudflare.</p>
+
+		<Mermaid chart={`
+		flowchart LR
+		accTitle: Magic WAN Connector connects to the router in the site, and only some of the LANs connect to Connector.
+    a(Magic WAN Connector)--> b((Site's router)) --> c(Internet) --> i(Cloudflare)
+
+    subgraph Customer site
+    d[LAN 1] --> a
+    e[LAN 2] --> a
+    g(LAN 3) --> b
+    h(LAN 4) --> b
+    end
+
+    classDef orange fill:#f48120,color: black
+    class a,i orange
+		`} />
+
+		<p>Refer to <a href="/reference-architecture/diagrams/sase/magic-wan-connector-deployment/">Magic WAN Connector deployment options</a> for a high-level explanation of the deployment options that make sense to most environments, as well as a few advanced use cases.</p>
+
+		<AnchorHeading title="Firewall settings required" depth={4} />
+		<p>If there is a firewall deployed upstream of the Magic WAN Connector, configure the firewall to allow the following traffic:</p>
+
+		<Markdown
+			text={`
+	| Protocol/port | Destination IP/URL | Purpose |
+	| --- | --- |--- |
+	| \`UDP/53\` | DNS destination IP \`1.1.1.1\` | Needed to allow DNS traffic to Cloudflare DNS servers. Cloudflare uses this port for DNS lookups of control plane API |
+	| \`TCP/443\` | - | The Connector will open outbound HTTPS connections over this port for control plane operations. |
+	| \`UDP/4500\` | Destination IP \`162.159.64.1\` | Needed for Connector's initialization and discovery traffic through outbound connections. |
+	| \`UDP/4500\` | Destination IP - Cloudflare anycast IPs | Needed for the Cloudflare <GlossaryTooltip term="anycast" link="/magic-wan/configuration/manually/how-to/configure-tunnels/">anycast IPs</GlossaryTooltip> assigned to your account for tunnel outbound connections. This traffic is tunnel traffic. |
+	| \`TCP/7844\`, \`UDP/7844\` | Outbound connections | This is for debugging facilities in the Connector. |
+	| \`UDP/123\` | \`http://time.cloudflare.com/\` | Needed for Magic WAN Connector to periodically contact Cloudflare's Time Services. |
+	`}
+		inline={false}
+	/>
+
+  </>
+  )
+}
\ No newline at end of file

From 7c947e594e57d1c41c76661b4d613a6c766a26c0 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:02:57 +0000
Subject: [PATCH 05/34] deleted connector onramps partial

---
 .../magic-wan/connector/connector-onramps.mdx | 135 ------------------
 1 file changed, 135 deletions(-)
 delete mode 100644 src/content/partials/magic-wan/connector/connector-onramps.mdx

diff --git a/src/content/partials/magic-wan/connector/connector-onramps.mdx b/src/content/partials/magic-wan/connector/connector-onramps.mdx
deleted file mode 100644
index a1b6be736572852..000000000000000
--- a/src/content/partials/magic-wan/connector/connector-onramps.mdx
+++ /dev/null
@@ -1,135 +0,0 @@
----
-params:
-  - wan
-  - lan
-  - noConnectorShows
----
-
-import { GlossaryTooltip, Markdown, Render, TabItem, Tabs } from "~/components";
-
-### 1. Add a Connector on-ramp
-
-You need to add your Connector to your Cloudflare dashboard and configure its settings before connecting it to the Internet.
-
-To add a Connector on-ramp:
-
-1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
-2. Go to **Magic WAN** > **Connector on-ramps (beta)**.
-3. Select **Add**.
-4. In **Name**, enter a descriptive name for your Connector. Optionally, you can also add a description for it.
-5. You need to decide if you want to turn on high availability for the Connector. Refer to [About high availability configurations](#about-high-availability-configurations) for more information.
-6. Select **Create and continue**.
-7. Select **Add Connector**. This will show you a list of Magic WAN Connector devices associated with your account. <Markdown text={props.noConnectorShows} />
-8. If you have more than one Connector, choose the one that corresponds to the on-ramp you are creating. Connectors are identified by a serial number, also known as a service tag. Use this information to choose the right Connector. Select **Select Connector** when you are ready to proceed.
-9. The Connector will be added to your account with an **Interrupt window** defined. The interrupt window is the time period when the Magic WAN Connector software can update, which may result in interruption to existing connections. You can change this later. Refer to [Interrupt window](/magic-wan/configuration/connector/maintenance/interrupt-service-window/) for more details on how to define when the Connector can update its systems.
-10. Select **Continue** to proceed to creating your WAN and LAN networks.
-
-### 2. Create a WAN
-
-<Tabs syncKey="dashPlusAPI"> <TabItem label="Dashboard">
-
-1. In **WAN configuration**, select **Create**. You can create one or more [wide area networks (WANs)](https://www.cloudflare.com/learning/network-layer/what-is-a-wan/). Configuring multiple WANs will create multiple <GlossaryTooltip term="IPsec tunnel">IPsec</GlossaryTooltip> tunnels (one IPsec tunnel per WAN port). This allows the Connector to failover between circuits according to their <GlossaryTooltip term="tunnel health-check" link="/magic-wan/reference/tunnel-health-checks/">health</GlossaryTooltip>.
-2. In **Interface name**, enter a descriptive name for your WAN.
-3. **Interface number** <Markdown text={props.wan} />
-4. In **VLAN ID**, enter a number between `0` and `4094` to specify a [VLAN ID](/magic-wan/configuration/connector/reference/#vlan-id).
-5. In **Priority**, choose the priority for your WAN. Lower numbers have higher priority. Refer to <GlossaryTooltip term="traffic steering" link="/magic-wan/reference/traffic-steering/">Traffic steering</GlossaryTooltip> to learn more about how Cloudflare calculates priorities.
-6. In **Health check rate** configure the health check frequency for your site. Options are `low`, `mid`, and `high`. Refer to [Update tunnel health checks frequency](/magic-wan/configuration/common-settings/tunnel-health-checks/) for more information.
-7. **Addressing**: Select **DHCP**. This is needed the first time you set up your Connector to successfully download all settings to the machine and activate it. If you need a static IP address in your network environment:
-	1. Continue the set up flow below to activate your Connector.
-	2. Refer to [WAN with a static IP address](#wan-with-a-static-ip-address). If you choose a static IP, you also need to specify the static IP and gateway addresses.
-
-  <div class="medium-img">
-
-![An example of how to configure you Magic WAN Connector WAN](~/assets/images/magic-wan/connector/wan-config.png)
-
-  </div>
-
-8. Select **Save** when you are finished.
-
-</TabItem> <TabItem label="API">
-
-<Render file="connector/account-id-api-key" product="magic-wan" />
-
-Create a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/wans/methods/create/) to create a WAN.
-
-The `static_addressing` object is optional. Omit it if you are using DHCP. If you are using static addressing, add the `secondary_address` parameter when your site is in high availability (HA) mode.
-
-Example:
-
-```bash
-curl https://api.cloudflare.com/client/v4/accounts/{account_id}/magic/sites/{site_id}/wans \
---header "X-Auth-Email: <EMAIL>" \
---header "X-Auth-Key: <API_KEY>" \
---header "Content-Type: application/json" \
---data '{
-	"name": "<YOUR_WAN_NAME>",
-	"physport": 1,
-	"priority": 0,
-	"vlan_tag": 0
-}'
-```
-
-</TabItem> </Tabs>
-
-### 3. Create a LAN
-
-<Tabs syncKey="dashPlusAPI"> <TabItem label="Dashboard">
-
-1. In **LAN configuration**, select **Create**.
-2. Enter a descriptive name for your LAN in **Interface name**.
-3. **Interface number** <Markdown text={props.lan} />
-4. In **VLAN ID**, specify a [VLAN ID](/magic-wan/configuration/connector/reference/#vlan-id) to create virtual LANs.
-5. In **Static addressing** > **Static address** give your Connector's LAN interface its IP address. You can also enable the following options if they suit your use case:
-   - **This is a DHCP server**: If your Connector is a [DHCP server](/magic-wan/configuration/connector/network-options/dhcp/dhcp-server/).
-   - **This is a DHCP relay**: If your Connector is a [DHCP relay](/magic-wan/configuration/connector/network-options/dhcp/dhcp-relay/).
-6. (Optional) In **Directly attached subnet** > **Static NAT prefix**, enter a CIDR prefix to enable NAT (network address translation). The prefix you enter here should be the same size as the prefix entered in **Static addressing**. For example, both networks have a subnet mask of `/24`: `192.168.100.0/24` and `10.10.100.0/24`.
-7. (Optional) If your LAN contains additional subnets behind a layer 3 router, select **Add routed subnet** under **Routed subnets** to add them:
-   - **Prefix**: The CIDR prefix for the subnet behind the L3 router.
-   - **Next hop**: The address of the L3 router to which the Connector should forward packets for this subnet.
-   - **Static NAT prefix**: Optional setting. If you want to enable NAT for a routed subnet, supply an "external" prefix for the overlay-facing side of the NAT to use. It must be the same size as **Prefix**. <br /> Refer to [Routed subnets](/magic-wan/configuration/connector/network-options/routed-subnets/) for more information.
-8. Select **Save**.
-9. Select **Done** to finish your configuration. Tunnels and <GlossaryTooltip term="static route">static routes</GlossaryTooltip> will be automatically created for your Magic WAN Connector, once it boots up.
-
-</TabItem> <TabItem label="API">
-
-<Render file="connector/account-id-api-key" product="magic-wan" />
-
-Create a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/lans/methods/create/) to create a LAN.
-
-Example:
-
-```bash
-curl https://api.cloudflare.com/client/v4/accounts/{account_id}/magic/sites/{site_id}/lans \
---header "X-Auth-Email: <EMAIL>" \
---header "X-Auth-Key: <API_KEY>" \
---header "Content-Type: application/json" \
---data '{
-	"name": "<YOUR_LAN_NAME>",
-	"physport": 2,
-	"static_addressing": {
-		"address": "172.16.14.0/24"
-	},
-	"vlan_tag": 0
-}'
-```
-
-</TabItem> </Tabs>
-
-#### Network segmentation
-
-After setting up your LANs, you can configure your Connector to enable communication between them without traffic leaving your premises. Refer to [Network segmentation](/magic-wan/configuration/connector/network-options/network-segmentation/) for more information.
-
-#### DHCP options
-
-Magic WAN Connector supports different types of DHCP configurations. Connector can:
-
-- Connect to a DHCP server or use a static IP address instead of connecting to a DHCP server.
-- Act as a [DHCP server](/magic-wan/configuration/connector/network-options/dhcp/dhcp-server/).
-- Use [DHCP relay](/magic-wan/configuration/connector/network-options/dhcp/dhcp-relay/) to connect to a DHCP server outside the location your Magic WAN Connector is in.
-- [Reserve IP addresses](/magic-wan/configuration/connector/network-options/dhcp/dhcp-static-address-reservation/) for specific devices on your network.
-
-Refer to [DHCP options](/magic-wan/configuration/connector/network-options/dhcp/) to learn more.
-
-### 4. Add your Connector to a site
-
-After finishing your Connector configuration, you need to add it to a site. <Render file="sites-brief" />
\ No newline at end of file

From 29929ad764d792e64409cc255b694830f29ba12f Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:27:59 +0000
Subject: [PATCH 06/34] deleted activate partial

---
 .../connector/activate-connector.mdx          | 23 -------------------
 1 file changed, 23 deletions(-)
 delete mode 100644 src/content/partials/magic-wan/connector/activate-connector.mdx

diff --git a/src/content/partials/magic-wan/connector/activate-connector.mdx b/src/content/partials/magic-wan/connector/activate-connector.mdx
deleted file mode 100644
index b8d84c83d905c57..000000000000000
--- a/src/content/partials/magic-wan/connector/activate-connector.mdx
+++ /dev/null
@@ -1,23 +0,0 @@
----
-params:
-  - shippedLanguage
----
-
-import { Markdown } from "~/components";
-
-{props.shippedLanguage}, and will only establish a connection to the Cloudflare network when it is activated. Cloudflare recommends leaving it deactivated until you finish [setting it up in the dashboard](#1-add-a-connector-on-ramp).
-
-When the Connector is first activated, one of the ports must be connected to the Internet through a device that supports DHCP. This is required so that the Connector can reach the Cloudflare global network and download the required configurations that you [set up](#1-add-a-connector-on-ramp).
-
-:::caution
-Remember to connect Magic WAN Connector through a route that supports DHCP for its first connection to the Internet. Otherwise, the Connector will not work.
-:::
-
-When you are ready to connect your Magic WAN Connector to the Cloudflare network:
-
-1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
-2. Go to **Magic WAN** > **Configuration** > **Connectors**.
-3. Find the Connector you want to activate, select the three dots next to it > **Edit**. Make sure you verify the serial number to choose the right connector you want to activate.
-4. In the new window, the **Status** dropdown will show as **Deactivated**. Select it to change the status to **Activated**.
-5. The **Interrupt window** is the time period when the Magic WAN Connector software can update, which may result in interruption to existing connections. Choose a time period to minimize disruption to your sites. Refer to [Interrupt window](/magic-wan/configuration/connector/maintenance/interrupt-service-window/) for more details on how to define when the Connector can update its systems.
-6. Select **Update**.

From b8a7647afd4de97c66a4da3aa82848e49886539b Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:28:03 +0000
Subject: [PATCH 07/34] added content

---
 .../connector/configure-connectors.mdx        | 33 +++++++++++++++++++
 1 file changed, 33 insertions(+)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 788f6f4603c7fd5..a82af6f535d5ebb 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -365,4 +365,37 @@ After finishing your Connector configuration, you need to add it to a site. <Ren
 
   </>
   )
+}
+
+## Activate Connector
+
+{props.shippedLanguage}, and will only establish a connection to the Cloudflare network when it is activated. Cloudflare recommends leaving it deactivated until you finish [setting it up in the dashboard](#1-add-a-connector-on-ramp).
+
+When the Connector is first activated, one of the ports must be connected to the Internet through a device that supports DHCP. This is required so that the Connector can reach the Cloudflare global network and download the required configurations that you [set up](#1-add-a-connector-on-ramp).
+
+:::caution
+Remember to connect Magic WAN Connector through a route that supports DHCP for its first connection to the Internet. Otherwise, the Connector will not work.
+:::
+
+When you are ready to connect your Magic WAN Connector to the Cloudflare network:
+
+1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
+2. Go to **Magic WAN** > **Configuration** > **Connectors**.
+3. Find the Connector you want to activate, select the three dots next to it > **Edit**. Make sure you verify the serial number to choose the right connector you want to activate.
+4. In the new window, the **Status** dropdown will show as **Deactivated**. Select it to change the status to **Activated**.
+5. The **Interrupt window** is the time period when the Magic WAN Connector software can update, which may result in interruption to existing connections. Choose a time period to minimize disruption to your sites. Refer to [Interrupt window](/magic-wan/configuration/connector/maintenance/interrupt-service-window/) for more details on how to define when the Connector can update its systems.
+6. Select **Update**.
+
+{ props.magicWord === "virtual" && (
+  <>
+		<AnchorHeading title="Boot your Virtual Connector" depth={2} />
+		<ol>
+			<li>Go to <strong>Virtual Machines</strong> in VMware, and boot up Virtual Connector's VM.</li>
+			<li>The Virtual Connector will make a request to Cloudflare. This is the step where Virtual Connector registers your provided license key and downloads the <a href="#1-add-a-connector-on-ramp">configuration you provided</a>.</li>
+			<li>The Virtual Connector will set up the LAN and WAN connections according to the configuration downloaded from the site you created on the Cloudflare dashboard. The Virtual Connector will also establish IPsec tunnels.</li>
+			<li>If successful, the <a href="/magic-wan/configuration/common-settings/check-tunnel-health-dashboard/">tunnel health checks</a> will show as healthy.</li>
+			<li>If you do not see a <a href="/magic-wan/configuration/connector/maintenance/heartbeat/">healthy heartbeat</a> on the Cloudflare dashboard, reboot the Virtual Connector's VM in VMware.</li>
+		</ol>
+  </>
+  )
 }
\ No newline at end of file

From d9b5eac01dd397e78c5779ad4e4fbb333b96e891 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:33:44 +0000
Subject: [PATCH 08/34] added static ip

---
 .../connector/configure-connectors.mdx        | 52 ++++++++++++++++++-
 1 file changed, 51 insertions(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index a82af6f535d5ebb..2d93b36212d0b29 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -398,4 +398,54 @@ When you are ready to connect your Magic WAN Connector to the Cloudflare network
 		</ol>
   </>
   )
-}
\ No newline at end of file
+}
+
+---
+
+## WAN with a static IP address
+
+{props.shippedLanguage}, and will only establish a connection to the Cloudflare network when it is activated. Cloudflare recommends leaving it deactivated until you finish [setting it up in the dashboard](#1-add-a-connector-on-ramp).
+
+{ props.magicWord === "hardware" && (
+  <>
+    <p>After activating your Connector, you can use it in a network configuration with the WAN interface set to a static IP address — that is, an Internet configuration that is not automatically set by DHCP. To use your Connector on a network configuration with a static IP, follow the steps below.</p>
+
+		<Aside type="caution">Make sure you complete the setup workflow and activate your Magic WAN Connector before changing the WAN settings to a static IP.</Aside>
+
+		<ol>
+			<li>Connect Magic WAN Connector to a DHCP port with access to the Internet.</li>
+			<li><a href="#1-add-a-connector-on-ramp">Add a Connector on-ramp</a> in the Cloudflare dashboard.</li>
+			<li>Create a <a href="#2-create-a-wan">DHCP WAN</a>.</li>
+			<li><a href="#activate-connector">Activate</a> and power on your Connector.</li>
+			<li>Wait 60 seconds.</li>
+			<li>Make changes to the <a href="#2-create-a-wan">WAN settings</a> in the Cloudflare dashboard to a static IP set up.</li>
+			<li>Wait 60 seconds again.</li>
+			<li>Magic WAN Connector will go offline. This is normal and expected behavior.</li>
+			<li>Adjust your physical connections as required to match the static configuration.</li>
+			<li>Magic WAN Connector comes back online.</li>
+		</ol>
+  </>
+  )
+}
+
+{ props.magicWord === "virtual" && (
+  <>
+		<p>After activating your Virtual Connector, you can use it in a network configuration with the WAN interface set to a static IP address - that is, an Internet configuration that is not automatically set by DHCP. To use your Virtual Connector on a network configuration with a static IP, follow the steps below.</p>
+		<Aside type="caution">Make sure you complete the setup workflow and activate your Virtual Connector before changing the WAN settings to a static IP.</Aside>
+
+		<ol>
+			<li>Connect the machine where you installed the VM with Virtual Connector to a DHCP port with access to the Internet.</li>
+			<li><a href="#1-add-a-connector-on-ramp">Add a Connector on-ramp</a> in the Cloudflare dashboard.</li>
+			<li>Create a <a href="#2-create-a-wan">DHCP WAN</a>.</li>
+			<li><a href="#activate-connector">Activate</a> and boot your Virtual Connector.</li>
+			<li>Wait 60 seconds.</li>
+			<li>Make changes to the <a href="#2-create-a-wan">WAN settings</a> in the Cloudflare dashboard to a static IP set up.</li>
+			<li>Wait 60 seconds again.</li>
+			<li>Modify your <a href="#deploy-the-virtual-connector-on-vmware">Port Groups</a> as needed to change the source from which the WAN port obtains its IP address.</li>
+			<li>Reboot your virtual machine.</li>
+		</ol>
+  </>
+  )
+}
+
+

From c9bdf2bd945541b2aacfad308db90dcb749ba110 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:36:27 +0000
Subject: [PATCH 09/34] del hd configs partial

---
 .../magic-wan/connector/ha-configs.mdx        | 43 -------------------
 1 file changed, 43 deletions(-)
 delete mode 100644 src/content/partials/magic-wan/connector/ha-configs.mdx

diff --git a/src/content/partials/magic-wan/connector/ha-configs.mdx b/src/content/partials/magic-wan/connector/ha-configs.mdx
deleted file mode 100644
index 4cd0732d6888785..000000000000000
--- a/src/content/partials/magic-wan/connector/ha-configs.mdx
+++ /dev/null
@@ -1,43 +0,0 @@
----
-params:
-  - finalInstructions
-  - hardSoftConn
----
-
-import { Markdown } from "~/components";
-
-## About high availability configurations
-
-{props.hardSoftConn} When you set up a site in high availability, the WANs and LANs in your Connectors have the same configuration but are replicated on two nodes. In case of failure of a Connector, the other Connector becomes the active node, taking over configuration of the LAN gateway IP and allowing traffic to continue without disruption.
-
-Because Connectors in high availability configurations share a single site, you need to set up:
-
-- **Static address**: The IP for the primary node in your site.
-- **Secondary static address**: The IP for the secondary node in your site.
-- **Virtual static address**: The IP that the LAN south of the Connector will forward traffic to, which is the LAN's gateway IP.
-
-Make sure all IPs are part of the same subnet.
-
-For detailed information about the expected behavior of high availability configurations, refer to [High availability configurations](/magic-wan/configuration/connector/reference/#high-availability-configurations).
-
-### Create a high availability configuration
-
-You cannot enable high availability for an existing site. To add high availability to an existing site in the Cloudflare dashboard, you need to delete the site and start again.
-
-To set up a high availability configuration:
-
-1. Follow the steps in [Add a Connector on-ramp](#1-add-a-connector-on-ramp) up until step 4.
-2. After naming your site, select **Turn on high availability**.
-3. Select **Create and continue**.
-4. Select **Add Connector**.
-5. From the list, choose your first Connector > **Add Connector**.
-6. Back on the previous screen, select **Add secondary Connector**.
-7. From the list, choose your second Connector > **Add Connector**.
-8. Select **Continue** to [Create a WAN](#2-create-a-wan). If you are configuring a static IP, configure the IP for the primary node as the static address, and the IP for the secondary node as the secondary static address.
-9. To create a LAN, follow the steps mentioned above in [Create a LAN](#3-create-a-lan) up until step 4.
-10. In **Static address**, enter the IP for the primary node in your site. For example, `192.168.10.1/24`.
-11. In **Secondary static address**, enter the IP for the secondary node in your site. For example, `192.168.10.2/24`.
-12. In **Virtual static address**, enter the IP that the LAN south of the Connector will forward traffic to. For example, `192.168.10.3/24`.
-13. Select **Save**.
-14. From the **High availability probing link** drop-down menu, select the port that should be used to monitor the node's health. Cloudflare recommends you choose a reliable interface as the HA probing link. The primary and secondary node's probing link should be connected over a switch, and cannot be a direct connection.
-15. <Markdown text={props.finalInstructions} />

From 94cc180a84665d83f6a8f560df8de6e7f764906f Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:36:32 +0000
Subject: [PATCH 10/34] added ha configs

---
 .../connector/configure-connectors.mdx        | 38 +++++++++++++++++++
 1 file changed, 38 insertions(+)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 2d93b36212d0b29..526a6ca131cbad3 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -6,6 +6,8 @@ params:
   - wan
   - lan
   - noConnectorShows
+  - finalInstructions
+  - hardSoftConn
 ---
 
 import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Markdown, Render, TabItem, Tabs } from "~/components";
@@ -448,4 +450,40 @@ When you are ready to connect your Magic WAN Connector to the Cloudflare network
   )
 }
 
+---
+
+## About high availability configurations
+
+{props.hardSoftConn} When you set up a site in high availability, the WANs and LANs in your Connectors have the same configuration but are replicated on two nodes. In case of failure of a Connector, the other Connector becomes the active node, taking over configuration of the LAN gateway IP and allowing traffic to continue without disruption.
+
+Because Connectors in high availability configurations share a single site, you need to set up:
+
+- **Static address**: The IP for the primary node in your site.
+- **Secondary static address**: The IP for the secondary node in your site.
+- **Virtual static address**: The IP that the LAN south of the Connector will forward traffic to, which is the LAN's gateway IP.
+
+Make sure all IPs are part of the same subnet.
+
+For detailed information about the expected behavior of high availability configurations, refer to [High availability configurations](/magic-wan/configuration/connector/reference/#high-availability-configurations).
+
+### Create a high availability configuration
+
+You cannot enable high availability for an existing site. To add high availability to an existing site in the Cloudflare dashboard, you need to delete the site and start again.
+
+To set up a high availability configuration:
 
+1. Follow the steps in [Add a Connector on-ramp](#1-add-a-connector-on-ramp) up until step 4.
+2. After naming your site, select **Turn on high availability**.
+3. Select **Create and continue**.
+4. Select **Add Connector**.
+5. From the list, choose your first Connector > **Add Connector**.
+6. Back on the previous screen, select **Add secondary Connector**.
+7. From the list, choose your second Connector > **Add Connector**.
+8. Select **Continue** to [Create a WAN](#2-create-a-wan). If you are configuring a static IP, configure the IP for the primary node as the static address, and the IP for the secondary node as the secondary static address.
+9. To create a LAN, follow the steps mentioned above in [Create a LAN](#3-create-a-lan) up until step 4.
+10. In **Static address**, enter the IP for the primary node in your site. For example, `192.168.10.1/24`.
+11. In **Secondary static address**, enter the IP for the secondary node in your site. For example, `192.168.10.2/24`.
+12. In **Virtual static address**, enter the IP that the LAN south of the Connector will forward traffic to. For example, `192.168.10.3/24`.
+13. Select **Save**.
+14. From the **High availability probing link** drop-down menu, select the port that should be used to monitor the node's health. Cloudflare recommends you choose a reliable interface as the HA probing link. The primary and secondary node's probing link should be connected over a switch, and cannot be a direct connection.
+15. <Markdown text={props.finalInstructions} />

From e8349d2ce819c249a953e888bea5909f8df24e40 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:39:17 +0000
Subject: [PATCH 11/34] deleted ipsec tunnels partial

---
 .../magic-wan/connector/ipsec-static-tunnels.mdx    | 13 -------------
 1 file changed, 13 deletions(-)
 delete mode 100644 src/content/partials/magic-wan/connector/ipsec-static-tunnels.mdx

diff --git a/src/content/partials/magic-wan/connector/ipsec-static-tunnels.mdx b/src/content/partials/magic-wan/connector/ipsec-static-tunnels.mdx
deleted file mode 100644
index 99ecb8f793e0a70..000000000000000
--- a/src/content/partials/magic-wan/connector/ipsec-static-tunnels.mdx
+++ /dev/null
@@ -1,13 +0,0 @@
----
-{}
-
----
-
-Magic WAN Connector automatically creates [IPsec tunnels](/magic-wan/reference/tunnels/#ipsec-tunnels) and [static routes](/magic-wan/reference/traffic-steering/) for you. You cannot configure these manually.
-
-To check the IPsec tunnels and static routes created by your Magic WAN Connector:
-
-1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
-2. Go to **Magic WAN** > **Sites**.
-3. Select the name of the site for which you want to check the Connector's IPsec tunnels and static routes, and select **Edit**.
-4. Select **Tunnels** to check IPsec tunnels, and **Routes** for the static routes.

From b781740c938c01c263f8c90bca4759522df18e4b Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:39:22 +0000
Subject: [PATCH 12/34] added ipsec info

---
 .../magic-wan/connector/configure-connectors.mdx    | 13 +++++++++++++
 1 file changed, 13 insertions(+)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 526a6ca131cbad3..727be232a07793b 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -487,3 +487,16 @@ To set up a high availability configuration:
 13. Select **Save**.
 14. From the **High availability probing link** drop-down menu, select the port that should be used to monitor the node's health. Cloudflare recommends you choose a reliable interface as the HA probing link. The primary and secondary node's probing link should be connected over a switch, and cannot be a direct connection.
 15. <Markdown text={props.finalInstructions} />
+
+---
+
+## IP sec tunnels and static routes
+
+Magic WAN Connector automatically creates [IPsec tunnels](/magic-wan/reference/tunnels/#ipsec-tunnels) and [static routes](/magic-wan/reference/traffic-steering/) for you. You cannot configure these manually.
+
+To check the IPsec tunnels and static routes created by your Magic WAN Connector:
+
+1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
+2. Go to **Magic WAN** > **Sites**.
+3. Select the name of the site for which you want to check the Connector's IPsec tunnels and static routes, and select **Edit**.
+4. Select **Tunnels** to check IPsec tunnels, and **Routes** for the static routes.
\ No newline at end of file

From 70d7f6fdd288aca301a4b7455f13e4585754170f Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:40:23 +0000
Subject: [PATCH 13/34] added next steps

---
 .../magic-wan/connector/configure-connectors.mdx      | 11 ++++++++++-
 1 file changed, 10 insertions(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 727be232a07793b..a71c217c0dcea71 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -499,4 +499,13 @@ To check the IPsec tunnels and static routes created by your Magic WAN Connector
 1. Log in to the [Cloudflare dashboard](https://dash.cloudflare.com/) and select your account.
 2. Go to **Magic WAN** > **Sites**.
 3. Select the name of the site for which you want to check the Connector's IPsec tunnels and static routes, and select **Edit**.
-4. Select **Tunnels** to check IPsec tunnels, and **Routes** for the static routes.
\ No newline at end of file
+4. Select **Tunnels** to check IPsec tunnels, and **Routes** for the static routes.
+
+---
+
+## Next steps
+
+- [Network options](/magic-wan/configuration/connector/network-options/)
+- [Maintenance](/magic-wan/configuration/connector/maintenance/)
+- [Reference information](/magic-wan/configuration/connector/reference/)
+- [Troubleshooting](/magic-wan/configuration/connector/troubleshooting/)

From 00a7f266aae5e534421b2efc7f4cdcd61c1ba5eb Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:40:29 +0000
Subject: [PATCH 14/34] deleted next steps partial

---
 src/content/partials/magic-wan/connector/next-steps.mdx | 9 ---------
 1 file changed, 9 deletions(-)
 delete mode 100644 src/content/partials/magic-wan/connector/next-steps.mdx

diff --git a/src/content/partials/magic-wan/connector/next-steps.mdx b/src/content/partials/magic-wan/connector/next-steps.mdx
deleted file mode 100644
index 2457c22868f793c..000000000000000
--- a/src/content/partials/magic-wan/connector/next-steps.mdx
+++ /dev/null
@@ -1,9 +0,0 @@
----
-{}
-
----
-
-- [Network options](/magic-wan/configuration/connector/network-options/)
-- [Maintenance](/magic-wan/configuration/connector/maintenance/)
-- [Reference information](/magic-wan/configuration/connector/reference/)
-- [Troubleshooting](/magic-wan/configuration/connector/troubleshooting/)

From a5d313c5fa4d8a1ce6a184d15e431dfd956cee6a Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:45:21 +0000
Subject: [PATCH 15/34] adding content

---
 .../configure-hardware-connector/index.mdx    | 172 ++----------------
 .../connector/configure-virtual-connector.mdx | 169 +----------------
 .../connector/configure-connectors.mdx        |   3 +-
 3 files changed, 19 insertions(+), 325 deletions(-)

diff --git a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
index 3f7ab16b54776cf..8495409977b289a 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
@@ -6,162 +6,16 @@ sidebar:
   label: Configure hardware Connector
 ---
 
-import { GlossaryTooltip, Render, Card } from "~/components";
-
-## Prerequisites
-
-You need to purchase [Magic WAN](https://www.cloudflare.com/magic-wan/) before you can purchase and use the Magic WAN Connector. The Magic WAN Connector can function as your primary edge device for your network, or be deployed in-line with existing network gear.
-
-You also need to purchase a Magic WAN Connector before you can start configuring your settings in the Cloudflare dashboard. After buying a Magic WAN Connector, the device will be registered with your Cloudflare account and show up in your Cloudflare dashboard.
-
-Contact your account representative to learn more about purchasing options for the Magic WAN Connector device.
-
----
-
-## Before you begin
-
-<Render file="connector/before-you-begin" />
-
----
-
-## DHCP vs static IP connections
-
-Magic WAN Connector uses a DHCP connection at first boot to download your settings and go through the activation process. However, if you need to use a static IP in your Connector, and this is a fresh install:
-1. Connect Magic WAN Connector to a DHCP port with access to the Internet.
-2. Go through the [setup flow](#set-up-cloudflare-dashboard) below and activate your Connector.
-3. Refer to [WAN with a static IP address](#wan-with-a-static-ip-address).
-
----
-
-## Port speeds
-
-The hardware version of the Magic WAN connector includes two [SFP+ ports](https://en.wikipedia.org/wiki/Small_Form-factor_Pluggable) that support 10G throughput, as well as six RJ45 ports that support 1G throughput.
-
-Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for details on this topic.
-
----
-
-## Set up Cloudflare dashboard
-
-<Render
-	file="connector/connector-onramps"
-	params={{
-		wan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your WAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose the number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
-		lan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your LAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose a number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
-		noConnectorShows:
-			"You need to have bought a Connector already for it to show up here. Refer to [Prerequisites](#prerequisites) if no Connector shows up in this list.",
-	}}
-/>
-
-## Set up your Magic WAN Connector
-
-### Device installation
-
-There are several deployment options for Magic WAN Connector. Connector can act like a DHCP server for your local network, or integrate with your local setup and have static IP addresses assigned to it.
-
-When Connector acts like the WAN router for your site, deployment will be something like this:
-
-```mermaid
-flowchart LR
-accTitle: Magic WAN Connector set up as a DHCP server, and connecting to the Internet.
-    a(Magic WAN Connector)--> b(Internet) --> c(Cloudflare)
-
-    subgraph Customer site
-    d[LAN 1] --> a
-    e[LAN 2] --> a
-    end
-
-    classDef orange fill:#f48120,color: black
-    class a,c orange
-```
-
-<br />
-
-In the example below, the Connector sits behind the WAN router in your site, and on-ramps only some of the existing LANs to Cloudflare.
-
-<br />
-
-```mermaid
-flowchart LR
-accTitle: Magic WAN Connector connects to the router in the site, and only some of the LANs connect to Connector.
-    a(Magic WAN Connector)--> b((Site's router)) --> c(Internet) --> i(Cloudflare)
-
-    subgraph Customer site
-    d[LAN 1] --> a
-    e[LAN 2] --> a
-    g(LAN 3) --> b
-    h(LAN 4) --> b
-    end
-
-    classDef orange fill:#f48120,color: black
-    class a,i orange
-```
-
-Refer to [Magic WAN Connector deployment options](/reference-architecture/diagrams/sase/magic-wan-connector-deployment/) for a high-level explanation of the deployment options that make sense to most environments, as well as a few advanced use cases.
-
-#### Firewall settings required
-
-If there is a firewall deployed upstream of the Magic WAN Connector, configure the firewall to allow the following traffic:
-
-{/* prettier-ignore */}
-| Protocol/port | Destination IP/URL | Purpose |
-| --- | --- |--- |
-| `UDP/53` | DNS destination IP `1.1.1.1` | Needed to allow DNS traffic to Cloudflare DNS servers. Cloudflare uses this port for DNS lookups of control plane API |
-| `TCP/443` | - | The Connector will open outbound HTTPS connections over this port for control plane operations. |
-| `UDP/4500` | Destination IP `162.159.64.1` | Needed for Connector's initialization and discovery traffic through outbound connections. |
-| `UDP/4500` | Destination IP - Cloudflare anycast IPs | Needed for the Cloudflare <GlossaryTooltip term="anycast" link="/magic-wan/configuration/manually/how-to/configure-tunnels/">anycast IPs</GlossaryTooltip> assigned to your account for tunnel outbound connections. This traffic is tunnel traffic. |
-| `TCP/7844`, `UDP/7844` | Outbound connections | This is for debugging facilities in the Connector. |
-| `UDP/123` | `http://time.cloudflare.com/` | Needed for Magic WAN Connector to periodically contact Cloudflare's Time Services. |
-
-## Activate Connector
-
-<Render
-	file="connector/activate-connector"
-	params={{
-		shippedLanguage: "The Magic WAN Connector is shipped to you deactivated",
-	}}
-/>
-
----
-
-## WAN with a static IP address
-
-After activating your Connector, you can use it in a network configuration with the WAN interface set to a static IP address — that is, an Internet configuration that is not automatically set by DHCP. To use your Connector on a network configuration with a static IP, follow the steps below.
-
-:::caution
-Make sure you complete the setup workflow and activate your Magic WAN Connector before changing the WAN settings to a static IP.
-:::
-
-1. Connect Magic WAN Connector to a DHCP port with access to the Internet.
-2. [Add a Connector on-ramp](#1-add-a-connector-on-ramp) in the Cloudflare dashboard.
-3. Create a [DHCP WAN](#2-create-a-wan).
-4. [Activate](#activate-connector) and power on your Connector.
-5. Wait 60 seconds.
-6. Make changes to the [WAN settings](#2-create-a-wan) in the Cloudflare dashboard to a static IP set up.
-7. Wait 60 seconds again.
-8. Magic WAN Connector will go offline. This is normal and expected behavior.
-9. Adjust your physical connections as required to match the static configuration.
-10. Magic WAN Connector comes back online.
-
----
-
-<Render
-	file="connector/ha-configs"
-	params={{
-		hardSoftConn: "You need to deploy two Connectors in your premises before you can set up a site in high availability.",
-		finalInstructions:
-			"Follow the instructions in [Set up your Magic WAN Connector](#set-up-your-magic-wan-connector) and [Activate connector](#activate-connector) to finish setting up your Connectors.",
-	}}
-/>
-
----
-
-## IP sec tunnels and static routes
-
-<Render file="connector/ipsec-static-tunnels" />
-
----
-
-## Next steps
-
-<Render file="connector/next-steps" />
+import { Render } from "~/components";
+
+<Render file="connector/configure-connectors" params={{
+	magicWord: "hardware",
+	productName: "Magic WAN Connector",
+	productNameType: "the machine with your Virtual Connector VM",
+	wan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your WAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose the number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
+	lan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your LAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose a number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
+	noConnectorShows: "You need to have bought a Connector already for it to show up here. Refer to [Prerequisites](#prerequisites) if no Connector shows up in this list.",
+	shippedLanguage: "The Magic WAN Connector is shipped to you deactivated",
+	hardSoftConn: "You need to deploy two Connectors in your premises before you can set up a site in high availability.",
+	finalInstructions: "Follow the instructions in [Set up your Magic WAN Connector](#set-up-your-magic-wan-connector) and [Activate connector](#activate-connector) to finish setting up your Connectors."
+	}} />
diff --git a/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx b/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
index c43ed53ca365329..c8a9b0906f63dee 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
@@ -7,169 +7,8 @@ sidebar:
 
 import { Render } from "~/components";
 
-Virtual Magic WAN Connector (Virtual Connector) is a virtual appliance alternative to the hardware based Magic WAN Connector appliance. These two versions of Connector are identical otherwise.
+<Render file="connector/configure-connectors" params={{
+	magicWord: "virtual",
+	productName:
 
-## Prerequisites
-
-Before you can install Virtual Connector, you need an Enterprise account with Magic WAN enabled. Additionally, you need to have a VMware host with sufficient compute, memory, and storage to run the virtual machine with Virtual Connector. This includes:
-
-- Intel x86 CPU architecture
-- ESXi hypervisor 7.0U1 or higher
-- 4 virtual CPUs per virtual connector (We recommend deployment with a 1:1 virtual CPU to physical core allocation to avoid CPU over contention which will cause packet loss.)
-- 8 GB of RAM per virtual connector
-- 8 GB of disk per virtual connector
-- One vSwitch port group or VLAN with access to the Internet (for example, through a WAN)
-- One or more vSwitch port group or VLAN that will be the internal LAN
-
-Refer to [VMware's documentation](https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.esxi.install.doc/GUID-B2F01BF5-078A-4C7E-B505-5DFFED0B8C38.html) for more information on how to install ESXi and configure a virtual machine.
-
----
-
-## Before you begin
-
-<Render file="connector/before-you-begin" />
-
----
-
-## DHCP vs static IP connections
-
-Virtual Connector uses a DHCP connection at first boot to download your settings and go through the activation process. However, if you need to use a static IP in your Virtual Connector, and this is a fresh install:
-1. Connect the machine with your Virtual Connector VM to a DHCP port with access to the Internet.
-2. Go through the [setup flow](#set-up-cloudflare-dashboard) below and activate your Connector.
-3. Refer to [WAN with a static IP address](#wan-with-a-static-ip-address).
-
-## Obtain the Virtual Connector image
-
-Contact your account team at Cloudflare to obtain the Virtual Connector [OVA package](https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-AE61948B-C2EE-436E-BAFB-3C7209088552.html) and license keys. The OVA image includes the files required to install and configure the virtual machine (VM) for Virtual Connector with the appropriate settings.
-
-This image can be deployed multiple times to create several instances of a Virtual Connector, in different locations or on the same ESXi host.
-
-You will consume one license key for each instance created. For example, if you want to deploy 10 Virtual Connectors you should request 10 license keys, and your account team will create 10 Connector instances in your Cloudflare dashboard.
-
-## Deploy the Virtual Connector on VMware
-
-The following instructions assume you already have VMware ESXi hypervisor installed with sufficient resources. Refer to [Prerequisites](#prerequisites) for more information.
-
-1. When setting up your VMware ESXi, you need to create port groups for Virtual Connector. Go to **Networking** > **Port groups**, and prepare your vSwitch port groups and/or VLANs for your desired network topology. For example, a simple deployment typically has:
-	- A WAN port group where the Virtual Connector will get an IP address (static or DHCP) that has access to the Internet.
-	- A LAN port group, where the Virtual Connector will act as default router, and possibly DHCP server.
-	- A null, or unused, port group for allocating unused virtual interfaces in the Virtual Connector. You can, for example, create a null port group with the name of `Null port group`, and a **VLAN ID** of `999`.
-
-:::note[VLAN tagging]
-Virtual Connector supports creating subinterfaces through the use of [802.1Q VLAN tagging](https://en.wikipedia.org/wiki/IEEE_802.1Q).
-
-Use VLAN ID `0` when:
-
-- Connected to a Port Group or Distributed Port Group that is associated with a specific VLAN.
-- Connected to a Port Group or Distributed Port Group that is configured as a trunk that requires untagged packets.
-
-You can also configure subinterfaces on the Virtual Connector by associating the network interface with a Port Group or Distributed Port Group trunk and specifying a VLAN ID in addition to the port associated with the network interface (VLAN ID `1`-`4094`).
-
-Refer to [VMWare's documentation](https://kb.vmware.com/s/article/1003825) for more information.
-:::
-
-2. Extract the files in the OVA image provided by your Cloudflare account team. For example:
-
-	```txt
-	tar -xvf mconn-2024-1-3.ova
-	```
-
-	Take note of the folder where you are extracting the files to, as you will need to refer to that folder when creating the VM.
-
-3. Go to **Virtual Machines** > **Create/Register VM** wizard to start deploying the Virtual Connector.
-4. Select **Deploy a virtual machine from an OVF or OVA file** > **Next**.
-5. Choose a descriptive name for your virtual machine.
-6. Upload the files you have extracted from the OVA image. These include `mconn.ovf`, `mconn.nvram`, and `mconn.vmdk`.
-7. Select where you want to save the files extracted from the OVA image > **Next**.
-8. In **Networking mappings**, select assignments for your desired topology according to the port groups you set up previously:
-	1. For example, map `eno1` port to `VM Network` to create your WAN, and `eno2` to `LAN0` to act as your LAN port.
-	2. Allocate any unused ports to the `null` port group.
-	3. Take note of your configuration. You will need this information to configure your network in the Cloudflare dashboard.
-9. In **Disk provisioning**, select **Thin**.
-10. Before completing the deployment wizard, disable **Power on automatically**. This is important so that you can configure the license key prior to boot.
-11. Configure the virtual machine with the license key your account team provided you:
-	1. Select the Virtual Connector's VM > **Settings**.
-	2. Go to **VM Options** > **Advanced** > **Edit Configuration**.
-	3. Select **Add parameter** to add your license key. Scroll down to the last entry (this is where VMware adds the new parameter), and add the following two new entries:
-		- **Key**: `guestinfo.cloudflare.identity`
-		- **Value**: `<YOUR_LICENCE_KEY>`
-
-:::note
-You cannot use the same license key twice, or reuse a key once the virtual machine has been registered with Cloudflare. You need a new key from your account team for every new Virtual Connector.
-:::
-
-12. Select **Save** to finish configuring your Virtual Connector.
-13. Continue set up in your [Cloudflare dashboard](#set-up-cloudflare-dashboard).
-
-## Set up Cloudflare dashboard
-
-<Render
-	file="connector/connector-onramps"
-	params={{
-		wan: "needs to correspond to the virtual network interface on the Virtual Connector instance you have set up in VMware. Following our example from the previous steps, you need to choose port `1` since that is what corresponds to the `eno1` port we set up in VMware.",
-		lan: "needs to correspond to the virtual LAN interface on the Virtual Connector instance you have set up in VMware. Following our example from the previous steps, you need to choose port `2` since that is what corresponds to the `eno2` port we set up in VMware.",
-		noConnectorShows:
-			"For a Virtual Connector to show up you need to have already obtained your [OVA package and licence keys](#obtain-the-virtual-connector-image).",
-	}}
-/>
-
-## Activate Connector
-
-<Render
-	file="connector/activate-connector"
-	params={{
-		shippedLanguage:
-			"Virtual Magic WAN Connector is deactivated after you install it",
-	}}
-/>
-
-## Boot your Virtual Connector
-
-1. Go to **Virtual Machines** in VMware, and boot up Virtual Connector's VM.
-2. The Virtual Connector will make a request to Cloudflare. This is the step where Virtual Connector registers your provided license key and downloads the [configuration you provided](#1-add-a-connector-on-ramp).
-3. The Virtual Connector will set up the LAN and WAN connections according to the configuration downloaded from the site you created on the Cloudflare dashboard. The Virtual Connector will also establish IPsec tunnels.
-4. If successful, the [tunnel health checks](/magic-wan/configuration/common-settings/check-tunnel-health-dashboard/) will show as healthy.
-5. If you do not see a [healthy heartbeat](/magic-wan/configuration/connector/maintenance/heartbeat/) the Cloudflare dashboard, reboot the Virtual Connector's VM in VMware.
-
----
-
-## WAN with a static IP address
-
-After activating your Virtual Connector, you can use it in a network configuration with the WAN interface set to a static IP address - that is, an Internet configuration that is not automatically set by DHCP. To use your Virtual Connector on a network configuration with a static IP, follow the steps below.
-
-:::caution
-Make sure you complete the setup workflow and activate your Virtual Connector before changing the WAN settings to a static IP.
-:::
-
-1. Connect the machine where you installed the VM with Virtual Connector to a DHCP port with access to the Internet.
-2. [Add a Connector on-ramp](#1-add-a-connector-on-ramp) in the Cloudflare dashboard.
-3. Create a [DHCP WAN](#2-create-a-wan).
-4. [Activate](#activate-connector) and boot your Virtual Connector.
-5. Wait 60 seconds.
-6. Make changes to the [WAN settings](#2-create-a-wan) in the Cloudflare dashboard to a static IP set up.
-7. Wait 60 seconds again.
-8. Modify your [Port Groups](#deploy-the-virtual-connector-on-vmware) as needed to change the source from which the WAN port obtains its IP address.
-9. Reboot your virtual machine.
-
----
-
-<Render
-	file="connector/ha-configs"
-	params={{
-		hardSoftConn: "You need to install two Virtual Connectors before you can set up a site in high availability.",
-		finalInstructions:
-			"Follow the instructions in [Activate connector](#activate-connector) to finish setting up your Connectors.",
-	}}
-/>
-
----
-
-## IP sec tunnels and static routes
-
-<Render file="connector/ipsec-static-tunnels" />
-
----
-
-## Next steps
-
-<Render file="connector/next-steps" />
+	}} />
\ No newline at end of file
diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index a71c217c0dcea71..93752d93f21ecb8 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -6,8 +6,9 @@ params:
   - wan
   - lan
   - noConnectorShows
-  - finalInstructions
+  - shippedLanguage
   - hardSoftConn
+  - finalInstructions
 ---
 
 import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Markdown, Render, TabItem, Tabs } from "~/components";

From 1eac2d65e20bb4a28e030bf6aec42d9d4630e397 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:45:28 +0000
Subject: [PATCH 16/34] added mermaid component

---
 src/components/Mermaid.jsx | 15 +++++++++++++++
 1 file changed, 15 insertions(+)
 create mode 100644 src/components/Mermaid.jsx

diff --git a/src/components/Mermaid.jsx b/src/components/Mermaid.jsx
new file mode 100644
index 000000000000000..42a4eee8217be50
--- /dev/null
+++ b/src/components/Mermaid.jsx
@@ -0,0 +1,15 @@
+import { useEffect, useRef } from "react";
+import mermaid from "mermaid"; // ✅ Correct import
+
+const Mermaid = ({ chart }) => {
+  const ref = useRef(null);
+
+  useEffect(() => {
+    mermaid.initialize({ startOnLoad: true });
+    mermaid.contentLoaded();
+  }, [chart]);
+
+  return <div ref={ref} className="mermaid">{chart}</div>;
+};
+
+export default Mermaid;

From 2e2802cc3a69eb39f6c3f06cf03be57f6a134a3c Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:51:31 +0000
Subject: [PATCH 17/34] corrected text

---
 .../connector/configure-hardware-connector/index.mdx            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
index 8495409977b289a..3e43f43b53b4633 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
@@ -11,7 +11,7 @@ import { Render } from "~/components";
 <Render file="connector/configure-connectors" params={{
 	magicWord: "hardware",
 	productName: "Magic WAN Connector",
-	productNameType: "the machine with your Virtual Connector VM",
+	productNameType: "Magic WAN Connector",
 	wan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your WAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose the number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
 	lan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your LAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose a number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
 	noConnectorShows: "You need to have bought a Connector already for it to show up here. Refer to [Prerequisites](#prerequisites) if no Connector shows up in this list.",

From 5b767dc511e4a378c514d57c7d1b16b6a528b43a Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 11:51:38 +0000
Subject: [PATCH 18/34] added vars

---
 .../connector/configure-virtual-connector.mdx          | 10 ++++++++--
 1 file changed, 8 insertions(+), 2 deletions(-)

diff --git a/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx b/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
index c8a9b0906f63dee..b4a7a384845f807 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
@@ -9,6 +9,12 @@ import { Render } from "~/components";
 
 <Render file="connector/configure-connectors" params={{
 	magicWord: "virtual",
-	productName:
-
+	productName: "Virtual Connector",
+	productNameType: "the machine with your Virtual Connector VM",
+	wan: "needs to correspond to the virtual network interface on the Virtual Connector instance you have set up in VMware. Following our example from the previous steps, you need to choose port `1` since that is what corresponds to the `eno1` port we set up in VMware.",
+	lan: "needs to correspond to the virtual LAN interface on the Virtual Connector instance you have set up in VMware. Following our example from the previous steps, you need to choose port `2` since that is what corresponds to the `eno2` port we set up in VMware.",
+	noConnectorShows: "For a Virtual Connector to show up you need to have already obtained your [OVA package and licence keys](#obtain-the-virtual-connector-image).",
+	shippedLanguage: "Virtual Magic WAN Connector is deactivated after you install it",
+	hardSoftConn: "You need to install two Virtual Connectors before you can set up a site in high availability.",
+	finalInstructions:  "Follow the instructions in [Activate connector](#activate-connector) to finish setting up your Connectors."
 	}} />
\ No newline at end of file

From 9690a41e811f64052269aba50aa833985b8207f7 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 12:03:42 +0000
Subject: [PATCH 19/34] refined text

---
 .../partials/magic-wan/connector/configure-connectors.mdx     | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 93752d93f21ecb8..05881d08ca6fa72 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -89,8 +89,8 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
 { props.magicWord === "hardware" && (
   <>
 		<AnchorHeading title="Port speeds" depth={2} />
-    <p>The hardware version of the Magic WAN connector includes two <a href="https://en.wikipedia.org/wiki/Small_Form-factor_Pluggable">SFP+ ports</a> that support 10G throughput, as well as six RJ45 ports that support 1G throughput.</p>
-		<p>Refer to <a href="/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/">SFP+ port information for details on this topic.</a></p>
+    <p>The hardware version of the Magic WAN connector includes two <a href="https://en.wikipedia.org/wiki/Small_Form-factor_Pluggable" target="_blank" rel="noopener noreferrer">SFP+ ports</a> that support 10G throughput, as well as six RJ45 ports that support 1G throughput.</p>
+		<p>Refer to <a href="/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/">SFP+ port information</a> for details on this topic.</p>
   </>
   )
 }

From 032923b3b4459abf6f4c9a5f955fa5f12a16f461 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 12:19:09 +0000
Subject: [PATCH 20/34] refined text

---
 .../partials/magic-wan/connector/configure-connectors.mdx | 8 +++-----
 1 file changed, 3 insertions(+), 5 deletions(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 05881d08ca6fa72..2d57319ec5e664e 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -46,7 +46,7 @@ import Mermaid from "~/components/Mermaid.jsx";
     	<li>One vSwitch port group or VLAN with access to the Internet (for example, through a WAN)</li>
     	<li>One or more vSwitch port group or VLAN that will be the internal LAN</li>
 		</ul>
-		<p>Refer to <a href="https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.esxi.install.doc/GUID-B2F01BF5-078A-4C7E-B505-5DFFED0B8C38.html">VMware's documentation</a> for more information on how to install ESXi and configure a virtual machine.</p>
+		<p>Refer to <a href="https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.esxi.install.doc/GUID-B2F01BF5-078A-4C7E-B505-5DFFED0B8C38.html" target="_blank" rel="noopener noreferrer">VMware's documentation</a> for more information on how to install ESXi and configure a virtual machine.</p>
   </>
   )
 }
@@ -55,7 +55,7 @@ import Mermaid from "~/components/Mermaid.jsx";
 
 ## Before you begin
 
-You can install up to two Magic WAN Connectors for redundancy at each of your sites. If one of your Connectors fail, traffic will fail over to the other Connector ensuring that you never lose connectivity to that site.
+You can install up to two {props.productName}s for redundancy at each of your sites. If one of your Connectors fail, traffic will fail over to the other Connector ensuring that you never lose connectivity to that site.
 
 In this type of high availability (HA) configuration, you will choose a reliable LAN interface as the HA link which will be used to monitor the health of the peer connector. HA links can be dedicated links or can be shared with other LAN traffic.
 
@@ -359,7 +359,7 @@ After finishing your Connector configuration, you need to add it to a site. <Ren
 	| \`UDP/53\` | DNS destination IP \`1.1.1.1\` | Needed to allow DNS traffic to Cloudflare DNS servers. Cloudflare uses this port for DNS lookups of control plane API |
 	| \`TCP/443\` | - | The Connector will open outbound HTTPS connections over this port for control plane operations. |
 	| \`UDP/4500\` | Destination IP \`162.159.64.1\` | Needed for Connector's initialization and discovery traffic through outbound connections. |
-	| \`UDP/4500\` | Destination IP - Cloudflare anycast IPs | Needed for the Cloudflare <GlossaryTooltip term="anycast" link="/magic-wan/configuration/manually/how-to/configure-tunnels/">anycast IPs</GlossaryTooltip> assigned to your account for tunnel outbound connections. This traffic is tunnel traffic. |
+	| \`UDP/4500\` | Destination IP - Cloudflare anycast IPs | Needed for the Cloudflare anycast IPs assigned to your account for tunnel outbound connections. This traffic is tunnel traffic. |
 	| \`TCP/7844\`, \`UDP/7844\` | Outbound connections | This is for debugging facilities in the Connector. |
 	| \`UDP/123\` | \`http://time.cloudflare.com/\` | Needed for Magic WAN Connector to periodically contact Cloudflare's Time Services. |
 	`}
@@ -407,8 +407,6 @@ When you are ready to connect your Magic WAN Connector to the Cloudflare network
 
 ## WAN with a static IP address
 
-{props.shippedLanguage}, and will only establish a connection to the Cloudflare network when it is activated. Cloudflare recommends leaving it deactivated until you finish [setting it up in the dashboard](#1-add-a-connector-on-ramp).
-
 { props.magicWord === "hardware" && (
   <>
     <p>After activating your Connector, you can use it in a network configuration with the WAN interface set to a static IP address — that is, an Internet configuration that is not automatically set by DHCP. To use your Connector on a network configuration with a static IP, follow the steps below.</p>

From 36dd2d713da3ac03b34a64ecebf79dde36fbc27a Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 12:27:27 +0000
Subject: [PATCH 21/34] refined a href code

---
 .../partials/magic-wan/connector/configure-connectors.mdx | 8 ++++----
 1 file changed, 4 insertions(+), 4 deletions(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 2d57319ec5e664e..e1621a35214f655 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -99,7 +99,7 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
   <>
 		<AnchorHeading title="Obtain the Virtual Connector image" depth={2} />
 
-		<p>Contact your account team at Cloudflare to obtain the Virtual Connector <a href="https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-AE61948B-C2EE-436E-BAFB-3C7209088552.html">OVA package</a> and license keys. The OVA image includes the files required to install and configure the virtual machine (VM) for Virtual Connector with the appropriate settings.</p>
+		<p>Contact your account team at Cloudflare to obtain the Virtual Connector <a href="https://docs.vmware.com/en/VMware-vSphere/7.0/com.vmware.vsphere.vm_admin.doc/GUID-AE61948B-C2EE-436E-BAFB-3C7209088552.html" target="_blank" rel="noopener noreferrer">OVA package</a> and license keys. The OVA image includes the files required to install and configure the virtual machine (VM) for Virtual Connector with the appropriate settings.</p>
 		<p>This image can be deployed multiple times to create several instances of a Virtual Connector, in different locations or on the same ESXi host.</p>
 		<p>You will consume one license key for each instance created. For example, if you want to deploy 10 Virtual Connectors you should request 10 license keys, and your account team will create 10 Connector instances in your Cloudflare dashboard.</p>
 
@@ -116,14 +116,14 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
 				</ul>
 
 			<Aside title="VLAN tagging">
-			<p>Virtual Connector supports creating subinterfaces through the use of [802.1Q VLAN tagging](https://en.wikipedia.org/wiki/IEEE_802.1Q).</p>
+			<p>Virtual Connector supports creating subinterfaces through the use of <a href="https://en.wikipedia.org/wiki/IEEE_802.1Q" target="_blank" rel="noopener noreferrer">802.1Q VLAN tagging.</a></p>
 			<p>Use VLAN ID <code>0</code> when:</p>
 			<ul>
 				<li>Connected to a Port Group or Distributed Port Group that is associated with a specific VLAN.</li>
 				<li>Connected to a Port Group or Distributed Port Group that is configured as a trunk that requires untagged packets.</li>
 			</ul>
-			<p>You can also configure subinterfaces on the Virtual Connector by associating the network interface with a Port Group or Distributed Port Group trunk and specifying a VLAN ID in addition to the port associated with the network interface (VLAN ID `1`-`4094`).</p>
-			<p>Refer to <a href="https://kb.vmware.com/s/article/1003825">VMWare's documentation</a> for more information.</p></Aside></li>
+			<p>You can also configure subinterfaces on the Virtual Connector by associating the network interface with a Port Group or Distributed Port Group trunk and specifying a VLAN ID in addition to the port associated with the network interface (VLAN ID <code>1</code>-<code>4094</code>).</p>
+			<p>Refer to <a href="https://kb.vmware.com/s/article/1003825" target="_blank" rel="noopener noreferrer">VMWare's documentation</a> for more information.</p></Aside></li>
 
 			<li>Extract the files in the OVA image provided by your Cloudflare account team. For example:
 

From d8d6eb7dec5601ba22084369c6cb8ad225fffd6e Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 14:15:36 +0000
Subject: [PATCH 22/34] removed mermaid component

---
 .../connector/configure-connectors.mdx        | 19 ++++++++-----------
 1 file changed, 8 insertions(+), 11 deletions(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index e1621a35214f655..7b34e8cc3c1087c 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -13,9 +13,6 @@ params:
 
 import { AnchorHeading, Aside, Card, Code, GlossaryTooltip, Markdown, Render, TabItem, Tabs } from "~/components";
 
-import Mermaid from "~/components/Mermaid.jsx";
-
-
 { props.magicWord === "virtual" && (
 	<>
 		<p>Virtual Magic WAN Connector (Virtual Connector) is a virtual appliance alternative to the hardware based Magic WAN Connector appliance. These two versions of Connector are identical otherwise.</p>
@@ -315,8 +312,8 @@ After finishing your Connector configuration, you need to add it to a site. <Ren
 		<p>There are several deployment options for Magic WAN Connector. Connector can act like a DHCP server for your local network, or integrate with your local setup and have static IP addresses assigned to it.</p>
 		<p>When Connector acts like the WAN router for your site, deployment will be something like this:</p>
 
-		<Mermaid chart={`
-		flowchart LR
+		<pre class="mermaid">
+		{`flowchart LR
 		accTitle: Magic WAN Connector set up as a DHCP server, and connecting to the Internet.
     a(Magic WAN Connector)--> b(Internet) --> c(Cloudflare)
 
@@ -326,13 +323,13 @@ After finishing your Connector configuration, you need to add it to a site. <Ren
     end
 
     classDef orange fill:#f48120,color: black
-    class a,c orange
-		`} />
+    class a,c orange`}
+		</pre>
 
 		<p>In the example below, the Connector sits behind the WAN router in your site, and on-ramps only some of the existing LANs to Cloudflare.</p>
 
-		<Mermaid chart={`
-		flowchart LR
+		<pre class="mermaid">
+		{`flowchart LR
 		accTitle: Magic WAN Connector connects to the router in the site, and only some of the LANs connect to Connector.
     a(Magic WAN Connector)--> b((Site's router)) --> c(Internet) --> i(Cloudflare)
 
@@ -344,8 +341,8 @@ After finishing your Connector configuration, you need to add it to a site. <Ren
     end
 
     classDef orange fill:#f48120,color: black
-    class a,i orange
-		`} />
+    class a,i orange`}
+		</pre>
 
 		<p>Refer to <a href="/reference-architecture/diagrams/sase/magic-wan-connector-deployment/">Magic WAN Connector deployment options</a> for a high-level explanation of the deployment options that make sense to most environments, as well as a few advanced use cases.</p>
 

From 495195c0490960c8fd6c86e377c68fede2fee442 Mon Sep 17 00:00:00 2001
From: marciocloudflare <marcio@cloudflare.com>
Date: Fri, 14 Feb 2025 14:15:59 +0000
Subject: [PATCH 23/34] deleted mermaid component

---
 src/components/Mermaid.jsx | 15 ---------------
 1 file changed, 15 deletions(-)
 delete mode 100644 src/components/Mermaid.jsx

diff --git a/src/components/Mermaid.jsx b/src/components/Mermaid.jsx
deleted file mode 100644
index 42a4eee8217be50..000000000000000
--- a/src/components/Mermaid.jsx
+++ /dev/null
@@ -1,15 +0,0 @@
-import { useEffect, useRef } from "react";
-import mermaid from "mermaid"; // ✅ Correct import
-
-const Mermaid = ({ chart }) => {
-  const ref = useRef(null);
-
-  useEffect(() => {
-    mermaid.initialize({ startOnLoad: true });
-    mermaid.contentLoaded();
-  }, [chart]);
-
-  return <div ref={ref} className="mermaid">{chart}</div>;
-};
-
-export default Mermaid;

From 7fc29357c2b3fa5116a9532398890790997dea16 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:41:10 +0000
Subject: [PATCH 24/34] Update
 src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../connector/configure-hardware-connector/index.mdx            | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
index 3e43f43b53b4633..d3d108bb26afb1c 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
@@ -12,7 +12,7 @@ import { Render } from "~/components";
 	magicWord: "hardware",
 	productName: "Magic WAN Connector",
 	productNameType: "Magic WAN Connector",
-	wan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your WAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose the number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
+	wan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your WAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose the number corresponding to the port that you are using in Connector. <br/> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
 	lan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your LAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose a number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
 	noConnectorShows: "You need to have bought a Connector already for it to show up here. Refer to [Prerequisites](#prerequisites) if no Connector shows up in this list.",
 	shippedLanguage: "The Magic WAN Connector is shipped to you deactivated",

From db517db948e8d8a90ad503ac3cd6eb108773a355 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:41:29 +0000
Subject: [PATCH 25/34] Apply suggestions from code review

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../connector/configure-hardware-connector/index.mdx          | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
index d3d108bb26afb1c..d42c7aa88c5f128 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-hardware-connector/index.mdx
@@ -13,9 +13,9 @@ import { Render } from "~/components";
 	productName: "Magic WAN Connector",
 	productNameType: "Magic WAN Connector",
 	wan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your WAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose the number corresponding to the port that you are using in Connector. <br/> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
-	lan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your LAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose a number corresponding to the port that you are using in Connector. <br> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
+	lan: "refers to the physical Magic WAN Connector Ethernet port that you are using for your LAN. The ports are labeled `GE1`, `GE2`, `GE3`, `GE4`, `GE5`, and `GE6`. Choose a number corresponding to the port that you are using in Connector. <br/> If you need a throughput higher than 1 Gbps, you can use one of the SFP+ ports. Refer to [SFP+ port information](/magic-wan/configuration/connector/configure-hardware-connector/sfp-port-information/) for more information on the hardware supported.",
 	noConnectorShows: "You need to have bought a Connector already for it to show up here. Refer to [Prerequisites](#prerequisites) if no Connector shows up in this list.",
 	shippedLanguage: "The Magic WAN Connector is shipped to you deactivated",
 	hardSoftConn: "You need to deploy two Connectors in your premises before you can set up a site in high availability.",
-	finalInstructions: "Follow the instructions in [Set up your Magic WAN Connector](#set-up-your-magic-wan-connector) and [Activate connector](#activate-connector) to finish setting up your Connectors."
+	finalInstructions: "Follow the instructions in [Set up your Magic WAN Connector](#set-up-your-magic-wan-connector) and [Activate Connector](#activate-connector) to finish setting up your Connectors."
 	}} />

From 866fc06c341e172f779d6895b1342069271010a2 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:41:51 +0000
Subject: [PATCH 26/34] Update
 src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../configuration/connector/configure-virtual-connector.mdx     | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx b/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
index b4a7a384845f807..1da57d3d018bb42 100644
--- a/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
+++ b/src/content/docs/magic-wan/configuration/connector/configure-virtual-connector.mdx
@@ -16,5 +16,5 @@ import { Render } from "~/components";
 	noConnectorShows: "For a Virtual Connector to show up you need to have already obtained your [OVA package and licence keys](#obtain-the-virtual-connector-image).",
 	shippedLanguage: "Virtual Magic WAN Connector is deactivated after you install it",
 	hardSoftConn: "You need to install two Virtual Connectors before you can set up a site in high availability.",
-	finalInstructions:  "Follow the instructions in [Activate connector](#activate-connector) to finish setting up your Connectors."
+	finalInstructions:  "Follow the instructions in [Activate Connector](#activate-connector) to finish setting up your Connectors."
 	}} />
\ No newline at end of file

From b7aeff48006dfd0f397189676c557400ade72c27 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:42:39 +0000
Subject: [PATCH 27/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 7b34e8cc3c1087c..30d21a0c466839f 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -120,7 +120,7 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
 				<li>Connected to a Port Group or Distributed Port Group that is configured as a trunk that requires untagged packets.</li>
 			</ul>
 			<p>You can also configure subinterfaces on the Virtual Connector by associating the network interface with a Port Group or Distributed Port Group trunk and specifying a VLAN ID in addition to the port associated with the network interface (VLAN ID <code>1</code>-<code>4094</code>).</p>
-			<p>Refer to <a href="https://kb.vmware.com/s/article/1003825" target="_blank" rel="noopener noreferrer">VMWare's documentation</a> for more information.</p></Aside></li>
+			<p>Refer to <a href="https://kb.vmware.com/s/article/1003825" target="_blank" rel="noopener noreferrer">VMware's documentation</a> for more information.</p></Aside></li>
 
 			<li>Extract the files in the OVA image provided by your Cloudflare account team. For example:
 

From d244a616159adbcd503dba163721ef0934430cb6 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:43:28 +0000
Subject: [PATCH 28/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 30d21a0c466839f..a631458aaa316a5 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -124,7 +124,7 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
 
 			<li>Extract the files in the OVA image provided by your Cloudflare account team. For example:
 
-			<Code lang="txt" code="tar -xvf mconn-2024-1-3.ova" />
+			<Code lang="sh" code="tar -xvf mconn-2024-1-3.ova" />
 
 			Take note of the folder where you are extracting the files to, as you will need to refer to that folder when creating the VM.
 			</li>

From d9bb44dcb152085da9bdb4639ab131c4884df2f8 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:43:41 +0000
Subject: [PATCH 29/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index a631458aaa316a5..6ea79923279a93e 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -159,7 +159,7 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
 				<li>Select <strong>Add parameter</strong> to add your license key. Scroll down to the last entry (this is where VMware adds the new parameter), and add the following two new entries:</li>
 					<ul>
 					<li><strong>Key</strong>: <code>guestinfo.cloudflare.identity</code></li>
-					<li><strong>Value</strong>: <code>{`<YOUR_LICENCE_KEY>`}</code></li>
+					<li><strong>Value</strong>: <code>{`<YOUR_LICENSE_KEY>`}</code></li>
 					</ul>
 			</ol>
 			<Aside>You cannot use the same license key twice, or reuse a key once the virtual machine has been registered with Cloudflare. You need a new key from your account team for every new Virtual Connector.</Aside>

From bb6852a6a12ee21e3dbfcbcd23181aae8943392c Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:45:09 +0000
Subject: [PATCH 30/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 6ea79923279a93e..e2b40835c64695e 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -166,7 +166,7 @@ You cannot enable high availability for an existing Connector on-ramp. To add hi
 
 			<li>Select <strong>Save</strong> to finish configuring your Virtual Connector.</li>
 
-			<li>Continue set up in your <a href="#set-up-cloudflare-dashboard">Cloudflare dashboard.</a></li>
+			<li>Continue setup in your <a href="#set-up-cloudflare-dashboard">Cloudflare dashboard.</a></li>
 		</ol>
 
   </>

From 270b6cfa0cdf7b0d7edb1c8cc832f52278560b2a Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:45:18 +0000
Subject: [PATCH 31/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index e2b40835c64695e..f30d8f078a59712 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -220,7 +220,7 @@ To add a Connector on-ramp:
 
 <Render file="connector/account-id-api-key" product="magic-wan" />
 
-Create a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/wans/methods/create/) to create a WAN.
+Make a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/wans/methods/create/) to create a WAN.
 
 The `static_addressing` object is optional. Omit it if you are using DHCP. If you are using static addressing, add the `secondary_address` parameter when your site is in high availability (HA) mode.
 

From 6bd6e3c5d1dda6ced0f7c0723be24874ff8772a7 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:45:39 +0000
Subject: [PATCH 32/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index f30d8f078a59712..47ce69bca5e0ae3 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -264,7 +264,7 @@ curl https://api.cloudflare.com/client/v4/accounts/{account_id}/magic/sites/{sit
 
 <Render file="connector/account-id-api-key" product="magic-wan" />
 
-Create a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/lans/methods/create/) to create a LAN.
+Make a `POST` request [using the API](/api/resources/magic_transit/subresources/sites/subresources/lans/methods/create/) to create a LAN.
 
 Example:
 

From db3446a9fd414be31860f2ea9a51244d7f4245e1 Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:45:57 +0000
Subject: [PATCH 33/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index 47ce69bca5e0ae3..aac63ebb75b6850 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -353,7 +353,7 @@ After finishing your Connector configuration, you need to add it to a site. <Ren
 			text={`
 	| Protocol/port | Destination IP/URL | Purpose |
 	| --- | --- |--- |
-	| \`UDP/53\` | DNS destination IP \`1.1.1.1\` | Needed to allow DNS traffic to Cloudflare DNS servers. Cloudflare uses this port for DNS lookups of control plane API |
+	| \`UDP/53\` | DNS destination IP \`1.1.1.1\` | Needed to allow DNS traffic to Cloudflare DNS servers. Cloudflare uses this port for DNS lookups of control plane API. |
 	| \`TCP/443\` | - | The Connector will open outbound HTTPS connections over this port for control plane operations. |
 	| \`UDP/4500\` | Destination IP \`162.159.64.1\` | Needed for Connector's initialization and discovery traffic through outbound connections. |
 	| \`UDP/4500\` | Destination IP - Cloudflare anycast IPs | Needed for the Cloudflare anycast IPs assigned to your account for tunnel outbound connections. This traffic is tunnel traffic. |

From fcf5c5da3d45f8e1a9c580bea75f59ab39d0502a Mon Sep 17 00:00:00 2001
From: marciocloudflare <83226960+marciocloudflare@users.noreply.github.com>
Date: Fri, 14 Feb 2025 15:46:12 +0000
Subject: [PATCH 34/34] Update
 src/content/partials/magic-wan/connector/configure-connectors.mdx

Co-authored-by: Pedro Sousa <680496+pedrosousa@users.noreply.github.com>
---
 .../partials/magic-wan/connector/configure-connectors.mdx       | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/content/partials/magic-wan/connector/configure-connectors.mdx b/src/content/partials/magic-wan/connector/configure-connectors.mdx
index aac63ebb75b6850..0f4b7cb2f043491 100644
--- a/src/content/partials/magic-wan/connector/configure-connectors.mdx
+++ b/src/content/partials/magic-wan/connector/configure-connectors.mdx
@@ -486,7 +486,7 @@ To set up a high availability configuration:
 
 ---
 
-## IP sec tunnels and static routes
+## IPsec tunnels and static routes
 
 Magic WAN Connector automatically creates [IPsec tunnels](/magic-wan/reference/tunnels/#ipsec-tunnels) and [static routes](/magic-wan/reference/traffic-steering/) for you. You cannot configure these manually.